Tag Archive: Computer security


No Security Ever Built Into Obamacare Site: Hacker

 

HEALTHCARE.GOV Security

 

 

” It could take a year to secure the risk of “high exposures” of personal information on the federal Obamacare online exchange, a cybersecurity expert told CNBC on Monday.

” When you develop a website, you develop it with security in mind. And it doesn’t appear to have happened this time,” said David Kennedy, a so-called “white hat” hacker who tests online security by breaching websites. He testified on Capitol Hill about the flaws of HealthCare.gov last week.

” It’s really hard to go back and fix the security around it because security wasn’t built into it,” said Kennedy, chief executive of TrustedSec. “We’re talking multiple months to over a year to at least address some of the critical-to-high exposures on the website itself.”

 

 

    The most interesting quote from the security expert in the video reveals that because HealthCare.gov is a Federal program if your personal information is compromised the government has NO OBLIGATION to inform you of that fact . Think about that before you sign up with the help of that convicted felon Navigator from ACORN .

 

 

 

 

 

 

 

Big Companies To Partner With Homeland Security To Scan Some Private Emails/Web Traffic

 

 

” It is nice to know that our privacy is being compromised as part of a massive public/private partnership. The surveillance state just took a big step forward, officially.

We are told that this information will only be used in the most dire of circumstances, but history has shown us that the government becomes less concerned about “circumstances” the longer it has the technology. This should concern everyone. That this had to be done via the executive branch because of popular resistance should concern everyone. That it was done despite this resistance should concern everyone.

(From NBC News)

Under last month’s White House executive order on cybersecurity, the scans will be driven by classified information provided by U.S. intelligence agencies — including data from the National Security Agency (NSA) — on new or especially serious espionage threats and other hacking attempts. U.S. spy chiefs said on March 12 that cyber attacks have supplanted terrorism as the top threat to the country.

The Department of Homeland Security will gather the secret data and pass it to a small group of telecommunication companies and cyber security providers that have employees holding security clearances, government and industry officials said. Those companies will then offer to process email and other Internet transmissions for critical infrastructure customers that choose to participate in the program.”

 

 

 

Censorship In America: 34 Civil Liberties Groups Speak Out Against CISPA In Lead Up To Hearings

 

 

 

” On Monday, EFF and over 30 other Internet rights organizations sent a letter to members of Congress demanding they vote no on the “cybersecurity” bill known as CISPA. The letter starts off a week in which Congress will hold three different hearings about CISPA and computer and network security. In addition to the letter, each hearing will provide opportunity to voice many of the bill’s problems. We encourage you to join the fight and tell your Representative to say no to CISPA.

 

The first hearing this week will focus on the Department of Homeland Security’s (DHS) role in cybersecurity. In the past couple of years there has been a turf battle over whether the National Security Agency (NSA) or DHS should run the nation’s Internet and network security. Even after NSA head General Keith Alexander declared that civilian agencies should be in charge, the House didn’t get the message. The letter we sent highlights a loophole in CISPA allowing companies to bypass privacy laws and share potentially personal information directly with the NSA. We agree with General Alexander. Civilian control of our domestic cybersecurity is a necessity. “